An attacker can exploit this issue to execute arbitrary code on iPhones that have Bluetooth enabled. Failed attacks will cause denial-of-service conditions.

Versions prior to iPhone 1.1.1 are vulnerable.

NOTE: This issue was initially disclosed along with several other issues in BID 25834 (Apple iPhone 1.1.1 Update Multiple Security Vulnerabilities). Each issue has been assigned its own BID to better document the details.

Affected Products:

Apple iPhone

Apple iPhone 1

Apple iPhone 1.0.1

References:

Juniper Networks provides this content via a wide variety of sources
and production methods. If notified of errors or omissions in the
content of this page, Juniper Networks, at its discretion, will
modify or remove the page or leave the content as is, depending on
various factors including but not limited to the reputation and
authority of the party providing the notification. Please use the
contact information displayed elsewhere on this page to report any
errors or omissions regarding the content on this page.